
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft
File: lSamckeK-nVEXY0H3MV8BYlm7-I.mft (raw, json)
Hash identifier: tEaNaaipmv9B23Mm/W1k0YujXa4eaZgLIUWZKfiIleA=
Subject key identifier: 39:44:32:43:F4:12:35:A9:82:68:5E:E1:3B:E6:05:EC:E1:13:84:FD
Authority key identifier: 95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2
Certificate issuer: /CN=A91FA1BE/serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2
Certificate serial: 0300
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft
Manifest number: 02F4
Signing time: Sun 05 Jul 2026 01:40:06 +0000
Manifest this update: Sun 05 Jul 2026 01:40:06 +0000
Manifest next update: Sun 12 Jul 2026 01:40:06 +0000
Files and hashes: 1: lSamckeK-nVEXY0H3MV8BYlm7-I.crl (hash: B5lo8ohoZD2x0z2DCfQD/bIXFoSBhFkl/qgKlbTGBjQ=)
2: 6E98B3182D3411ED92165562C4F9AE02.roa (hash: 7/ANmUusyhHaIQ0U3dh4piILL1EQvQjyTLSsoXWQ5XU=)
3: 6F46908C2D3411ED92165562C4F9AE02.roa (hash: UPDUd4t5zx8UFYbNLzFGnvRhyMjEHl7Tb9rUHZFXp40=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl
rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 01:40:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 768 (0x300)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FA1BE, serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2
Validity
Not Before: Jul 5 01:40:06 2026 GMT
Not After : Jul 12 01:40:06 2026 GMT
Subject: CN=6a49b5f6-b2a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2c:6b:14:57:27:97:b8:c8:c2:c2:ac:5f:20:
0b:66:78:c9:01:e8:43:39:cd:01:9f:55:e3:a8:59:
50:7c:d3:27:39:75:e0:c7:c3:35:26:61:8a:1a:fd:
f0:73:54:43:6d:be:02:fd:cb:d9:4b:77:85:48:6a:
ad:fc:2a:c4:25:b6:f5:3e:ad:ea:48:d8:8a:fa:d1:
6b:7d:6a:5e:57:f5:f1:06:bb:58:0d:eb:50:71:84:
c5:60:a1:ce:34:76:f5:99:18:cd:97:97:b5:b8:3b:
36:72:49:82:92:31:ca:65:c9:8b:6b:07:6b:8b:ed:
74:e9:0e:e1:50:31:4f:a0:56:0b:69:30:3c:e9:44:
e5:f8:a1:f8:a2:71:00:e3:0e:74:a4:c6:91:f8:d6:
7f:83:d5:bc:fb:71:a7:f6:03:cd:0f:5b:c1:c4:3a:
e2:ba:19:b6:53:0c:96:d6:39:70:39:d7:0c:b6:21:
b2:76:ef:b0:05:38:8b:dc:23:09:a2:0a:ac:c0:4b:
c9:07:57:8d:21:8c:3f:89:72:dd:81:77:d7:ed:b6:
9a:2a:8e:d4:4e:a6:7e:2f:b9:56:71:ab:a5:13:54:
34:d6:2c:a9:9e:20:6a:bc:bf:5e:23:2c:43:a1:af:
c9:85:c7:56:91:35:78:3a:19:c2:af:d9:af:93:28:
94:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:44:32:43:F4:12:35:A9:82:68:5E:E1:3B:E6:05:EC:E1:13:84:FD
X509v3 Authority Key Identifier:
keyid:95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6c:21:57:2a:74:fb:a7:3e:b3:86:c5:25:c7:60:a1:9a:57:1b:
56:e8:ca:f4:7d:54:93:42:bc:e2:1b:19:77:9d:68:ad:76:88:
ef:9d:49:20:d3:9e:04:d4:b1:45:36:10:23:ad:02:b8:33:25:
3e:04:af:7b:79:b6:59:ec:17:09:e2:bc:43:3e:af:c2:b8:f4:
5a:cb:fd:ee:9d:42:05:e5:84:c9:72:f4:87:a1:34:eb:f2:96:
ae:ff:cf:5d:ea:01:7b:d1:09:19:e7:df:d5:fb:de:95:b3:24:
46:9f:d8:52:47:ff:24:fd:0c:24:4c:11:33:fe:c9:96:0f:e1:
4d:bc:51:4c:2d:55:0b:0b:ca:16:9e:89:d3:4f:d7:2b:41:69:
53:58:78:04:74:a0:12:5b:70:c2:89:da:b1:21:7b:88:55:9b:
23:be:7a:36:11:3e:79:e0:61:41:6d:24:fd:66:d8:74:e5:fe:
4c:54:b3:ae:b1:5f:78:e4:8c:af:60:70:65:7a:94:51:14:0f:
71:8b:7d:d5:60:09:54:fc:77:6b:ab:18:ae:9e:e0:11:a3:5e:
b2:33:21:60:13:4d:bd:1e:83:54:31:4b:c0:86:97:7c:72:1b:
e5:94:a7:dd:8c:cb:83:9a:da:fd:d7:29:b1:81:e1:bc:85:0b:
2c:60:b2:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:18:36 2026 by rpki-client